Friday, 21 November 2014

WhatsApp rolls out end-to-end encryption using TextSecure code

The most recent update to WhatsApp's Android app includes a surprising feature: strong end-to-end encryption, enabled by default. "End-to-end" means that, unlike messages encrypted by Gmail or Facebook Chat, WhatsApp won't be able to decrypt the messages itself, even if the company is compelled by law enforcement. The company will set up the key exchange between users, but only the two users will have access to the conversation itself. There are other end-to-end encryption apps on the market — most notably Cryptocat, Silent Text and Telegram — but with over 600 million users across the world, WhatsApp is by far the largest platform to adopt the system.

Open Whisper Systems is best known as the developer of the Redphone,Signal and TextSecure apps. WhatsApp looked to TextSecure in particular, which keeps messages encrypted even if an attacker cracks the key at some point in the future, a feature known as forward secrecy. TextSecure has also published its source code and withstood numerous public code audits, earning the app a lot of credibility in security circles. Open Whisper has said the team will continue improving its in-house apps, but the company also expects to take on more integrations like this one in the future. Download the latest version from whatsapp official website.


Post a Comment

Back to top!